build(deps): bump the dev-dependencies group with 1 update

[dependabot]

Bumps the dev-dependencies group with 1 update: GrantBirki/json-yaml-validate.

Release notes

Sourced from GrantBirki/json-yaml-validate's releases.

v2.0.0

⚠️ Breaking Changes ⚠️

This release introduces potential breaking changes (GrantBirki/json-yaml-validate#17) through the new use_dot_match option:

• use_dot_match - Tells the Action whether to search paths that are "hidden" (begin with a . like .github). This option defaults to "true" and will search all paths matching "dot path criteria" unless set to "false".

For the majority of users, I do not expect issues to arise from this release. However, if you are not expecting dot (.) directories to be scanned, this Action may now fail for you unless you exclude this setting through use_dot_match: "false".

As always, feel free to open an issue in this repository if you have any questions

What's Changed

• Bump tough-cookie from 4.1.2 to 4.1.3 by @​dependabot in GrantBirki/json-yaml-validate#15
• Dot Matching by @​GrantBirki in GrantBirki/json-yaml-validate#17
• Node package updates by @​GrantBirki in GrantBirki/json-yaml-validate#18

Full Changelog: GrantBirki/json-yaml-validate@v1.5.0...v2.0.0

Commits

• 62fe13e Merge pull request #18 from GrantBirki/node-package-updates
• e023dd7 bundle
• e22f1af npm update
• 4ff138c Merge pull request #17 from GrantBirki/dot-match
• 110b887 add dot mode yaml tests
• b4a6b82 update json tests for dot mode
• 2ab8f19 use dot matching for json and yaml validators
• 917d470 update docs and actions inputs
• 55c444f Merge pull request #15 from GrantBirki/dependabot/npm_and_yarn/tough-cookie-4...
• bb212b0 Bump tough-cookie from 4.1.2 to 4.1.3
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

[k8s-ci-robot]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

[Raffo]

/approve
/lgtm

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dependabot[bot], Raffo

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [Raffo]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment